| K8S_CHECK_ADD_CAPABILITY | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_CHECK_DROP_CAPABILITY | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_CHECK_HOST_PID | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_CHECK_IF_CAPABILITY_EXISTS | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_CHECK_IF_SYS_ADMIN_EXISTS | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_CHECK_PRIVILEGED_USED | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_CHECK_RUN_AS_USER | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_CHECK_SECCOMP_PROFILE | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_CONTAINER_WITHOUT_SECURITYCONTEXT | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_IMAGE_HAS_DIGEST | 266. Disable insecure functionalities |
| K8S_PRIVILEGE_ESCALATION_ENABLED | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_ROOT_CONTAINER | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| K8S_ROOT_FILESYSTEM_READ_ONLY | 095. Define users with privileges
096. Set user's required privileges
186. Use the principle of least privilege |
| KUBERNETES_INSECURE_PORT | 181. Transmit data using secure protocols |
| KUBERNETES_USES_HTTP | 181. Transmit data using secure protocols |
| KUBERNETES_USES_HTTP_SERVER | 181. Transmit data using secure protocols |